// MCP TOOL REFERENCE

CADDY TOOLS

18 tools from the Caddy MCP Server, categorised by risk level.

View the Caddy policy →
// ALL 18 CADDY TOOLS
READ 9 tools
Read caddy_adapt Convert a config in any registered adapter format to Caddy JSON without loading it. Useful for previewing w... Read caddy_config_by_id Access config by @id tag. Any config object with an Read caddy_config_get Read Caddy config at any JSON path. Returns the full config when path is empty, or a subtree at a specific ... Read caddy_list_routes List all routes on a Caddy HTTP server with a human-readable summary of matchers and handlers. Read caddy_list_servers List all configured HTTP servers with their names, listen addresses, route counts, and TLS status. Use this... Read caddy_metrics Get Prometheus metrics from Caddy. Shows request counts, durations, TLS handshake stats, active connections... Read caddy_pki Get PKI certificate authority info or the CA certificate chain. Read caddy_status Check Caddy connectivity and get a config summary: servers, routes, listen addresses, and TLS status. Read caddy_upstreams Get the current health status of all reverse proxy upstreams. Shows address, active requests, and failure c...
WRITE 5 tools
Write caddy_add_route Add a route with full control over match conditions and handlers. Supports any Caddy handler (reverse_proxy... Write caddy_config_set Write config at a JSON path. Mode Write caddy_reverse_proxy Add a reverse proxy route. The most common operation — just specify where traffic comes from and where it g... Write caddy_revert Manage config snapshots for rollback. Snapshots are auto-captured before caddy_load and kept in-memory (las... Write caddy_tls Get or configure TLS/HTTPS settings. Actions:
DESTRUCTIVE 3 tools
Destructive caddy_config_delete Delete config at a JSON path. Removes the config node at the specified path. Deleting a parent node also de... Destructive caddy_remove_route Remove a route. Target by @id (preferred — stable across reorderings) or by array index on a specific serve... Destructive caddy_load Replace the entire Caddy configuration atomically. Accepts a JSON config object, or a Caddyfile string with...
EXECUTE 1 tools
Execute caddy_stop Gracefully shut down the Caddy server. Requires confirm=true to prevent accidental shutdown.

Route Caddy through PolicyLayer and every one of its 18 tools is checked against your policy before it runs.

CHECK YOUR STACK →

See every tool, the dangerous ones, and the token cost across your stack.

// FAQ
How many tools does the Caddy MCP server have? +

The Caddy MCP server exposes 18 tools across 4 categories: Read, Write, Destructive, Execute.

How do I enforce policies on Caddy tools? +

Route the Caddy server through the PolicyLayer gateway. Define allow, deny, or approval rules per tool in the dashboard; they are enforced on every call before it reaches the server.

What risk categories do Caddy tools fall into? +

Caddy tools are categorised as Read (9), Write (5), Destructive (3), Execute (1). Each category has a recommended default policy.

Enforce policy on every Caddy tool call.

Start from Caddy, add the rest of your stack, and see everything your agents can call. Then put policy on all of it.

CHECK YOUR STACK →

Free to start. No card required.

43,000+ MCP servers and 220,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.